1 / 22

Chapter 1 – Introduction Part 1

Chapter 1 – Introduction Part 1. Defining Security. The security of a system, application, or protocol is always relative to A set of desired properties An adversary with specific capabilities

arlais
Télécharger la présentation

Chapter 1 – Introduction Part 1

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Chapter 1 – IntroductionPart 1

  2. Defining Security • The security of a system, application, or protocol is always relative to • A set of desired properties • An adversary with specific capabilities • For example, standard file access permissions in Linux and Windows are not effective against an adversary who can boot from a CD

  3. Security Goals Integrity • C.I.A. Availability Confidentiality

  4. Confidentiality • Confidentiality is the avoidance of the unauthorized disclosure of information. • confidentiality involves the protection of data, providing access for those who are allowed to see it while disallowing others from learning anything about its content.

  5. Tools for Confidentiality Communicationchannel Sender Recipient • Encryption: the transformation of information using a secret, called an encryption key, so that the transformed information can only be read using another secret, called the decryption key (which may, in some cases, be the same as the encryption key). encrypt decrypt ciphertext plaintext plaintext shared secret key shared secret key Attacker (eavesdropping)

  6. Tools for Confidentiality • Access control: rules and policies that limit access to confidential information to those people and/or systems with a “need to know.” • This need to know may be determined by identity, such as a person’s name or a computer’s serial number, or by a role that a person has, such as being a manager or a computer security specialist.

  7. Tools for Confidentiality password=ucIb()w1V mother=Jones pet=Caesar human with fingers and eyes • Authentication: the determination of the identity or role that someone has. This determination can be done in a number of different ways, but it is usually based on a combination of • something the person has (like a smart card or a radio key fob storing secret keys), • something the person knows (like a password), • something the person is (like a human with a fingerprint). Something you are Something you know radio token with secret keys Something you have

  8. Tools for Confidentiality • Authorization: the determination if a person or system is allowed access to resources, based on an access control policy. • Such authorizations should prevent an attacker from tricking the system into letting him have access to protected resources. • Physical security: the establishment of physical barriers to limit access to protected computational resources. • Such barriers include locks on cabinets and doors, the placement of computers in windowless rooms, the use of sound dampening materials, and even the construction of buildings or rooms with walls incorporating copper meshes (called Faraday cages) so that electromagnetic signals cannot enter or exit the enclosure.

  9. Integrity • Integrity: the property that information has not be altered in an unauthorized way. • Tools: • Backups: the periodic archiving of data. • Checksums: the computation of a function that maps the contents of a file to a numerical value. A checksum function depends on the entire contents of a file and is designed in a way that even a small change to the input file (such as flipping a single bit) is highly likely to result in a different output value. • Data correcting codes: methods for storing data in such a way that small changes can be easily detected and automatically corrected.

  10. Availability • Availability: the property that information is accessible and modifiable in a timely fashion by those authorized to do so. • Tools: • Physical protections: infrastructure meant to keep information available even in the event of physical challenges. • Computational redundancies: computers and storage devices that serve as fallbacks in the case of failures.

  11. Other Security Concepts • A.A.A. Authenticity Anonymity Assurance

  12. Assurance • Assurance refers to how trust is provided and managed in computer systems. • Trust management depends on: • Policies, which specify behavioral expectations that people or systems havefor themselves and others. • For example, the designers of an online music system may specify policies that describe how users can access and copy songs. • Permissions, which describe the behaviors that are allowed by the agents that interact with a person or system. • For instance, an online music store may provide permissions for limited access and copying to people who have purchased certain songs. • Protections, which describe mechanisms put in place to enforce permissions and polices. • We could imagine that an online music store would build in protections to prevent people from unauthorized access and copying of its songs.

  13. Authenticity • Authenticity is the ability to determine that statements, policies, and permissions issued by persons or systems are genuine. • Primary tool: • digital signatures. These are cryptographic computations that allow a person or system to commit to the authenticity of their documents in a unique way that achieves nonrepudiation, which is the property that authentic statements issued by some person or system cannot be denied.

  14. Anonymity • Anonymity: the property that certain records or transactions not to be attributable to any individual. • Tools: • Aggregation: the combining of data from many individuals so that disclosed sums or averages cannot be tied to any individual. • Mixing: the intertwining of transactions, information, or communications in a way that cannot be traced to any individual. • Proxies: trusted agents that are willing to engage in actions for an individual in a way that cannot be traced back to that person. • Pseudonyms: fictional identities that can fill in for real identities in communications and transactions, but are otherwise known only to a trusted entity.

  15. Threats and Attacks • Eavesdropping: the interception of information intended for someone else during its transmission over a communication channel. Alice Bob Eve

  16. Threats and Attacks Communicationchannel Sender Recipient encrypt decrypt • Alteration: unauthorized modification of information. • Example: the man-in-the-middle attack, where a network stream is intercepted, modified, and retransmitted. plaintext M plaintext M′ shared secret key shared secret key ciphertext C ciphertext C′ Attacker (intercepting)

  17. Threats and Attacks • Denial-of-service: the interruption or degradation of a data service or information access. • Example: email spam, to the degree that it is meant to simply fill up a mail queue and slow down an email server. Alice

  18. Threats and Attacks • Masquerading: the fabrication of information that is purported to be from someone who is not actually the author. “From: Alice” (really is from Eve)

  19. Threats and Attacks • Repudiation: the denial of a commitment or data receipt. • This involves an attempt to back out of a contract or a protocol that requires the different parties to provide receipts acknowledging that data has been received. Public domain image from http://commons.wikimedia.org/wiki/File:Plastic_eraser.jpeg

  20. Threats and Attacks • Correlation andtraceback: the integration of multiple data sources and information flows to determine the source of a particular data stream or piece of information. Bob

  21. Discussion • Page 46 #R-1.7 • Page 46 #R-1.8

  22. Problem Hints • http://www.securitybook.net/

More Related